{"vulnerability": "cve-2026-8713", "sightings": [{"uuid": "457692e5-8aa9-4152-b292-445768073111", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8713", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116776306465494065", "content": "CVE-2026-8713: CRITICAL path traversal (CVSS 9.1) in Avada (Fusion) Builder \u22643.15.3. Unauthenticated file deletion possible; RCE risk if wp-config.php is removed. Restrict access, monitor usage, check vendor for fixes. https://radar.offseq.com/threat/cve-2026-8713-cwe-22-improper-limitation-of-a-path-82beab53eaced0fc #OffSeq #WordPress #Infosec", "creation_timestamp": "2026-06-19T10:30:30.282516Z"}, {"uuid": "62e32948-33ec-4cdf-ba26-bf0f2a432c06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8713", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mon563pgxv2l", "content": "CRITICAL path traversal in Avada (Fusion) Builder \u22643.15.3 lets unauthenticated attackers delete files \u2014 risking remote code execution. Restrict access, monitor activity, & check vendor advisories. https://radar.offseq.com/threat/cve-2026-8713-cwe-22-improper-limitation-of-a-path-82beab53eaced0fc ...", "creation_timestamp": "2026-06-19T10:30:30.480265Z"}, {"uuid": "1e0b5501-1d98-4b02-b76f-eb6e6d201c6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8713", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3moostal2o52d", "content": "Top 3 CVE for last 7 days:\nCVE-2026-50656: 26 interactions\nCVE-2026-54420: 26 interactions\nCVE-2026-20262: 20 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-20253: 6 interactions\nCVE-2026-47729: 5 interactions\nCVE-2026-8713: 4 interactions\n", "creation_timestamp": "2026-06-20T02:30:48.822569Z"}, {"uuid": "278fb18d-f980-407e-8006-25455ccb219c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8713", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mongltu7ft2a", "content": "CVE-2026-8713: The Silent WordPress Plugin Flaw That Could Erase Your Entire Website in Seconds +\u00a0Video\n\nA Hidden Danger Inside One of WordPress\u2019 Most Popular Builders In the vast ecosystem of WordPress plugins, few tools are as widely used for page design and form building as the Avada Builder\u2026", "creation_timestamp": "2026-06-19T13:19:15.836110Z"}]}